Now in public beta

Stop sharing .env files
over Slack

secr is a CLI-first secrets manager for teams. Encrypt, sync, and inject environment variables — without ever writing them to disk.

Start for free View CLI docs

Free for 3 projects · No credit card required

Terminal

Three commands. Zero .env files.

Get up and running in under a minute.

Step 1

Install

npm i -g @secr/cli

Step 2

Link

secr link --project my-api

Step 3

Run

secr run "npm start"

Everything .env files aren't

A secrets manager built for how modern teams actually work.

Envelope encryption

AES-256-GCM with per-project keys, wrapped by your KMS. Secrets are encrypted at rest and in transit.

CLI-first workflow

Run secr run "npm start" to inject secrets directly into your process — no .env files touching disk.

Team collaboration

Role-based access control with environment-level permissions. Admins, developers, and viewers — each see only what they need.

Full audit trail

Every secret access, change, and rotation is logged. Immutable, append-only audit logs you can export.

Instant sync

Change a secret and every team member gets it immediately. No more "pull the latest .env" messages.

Environment management

Dev, staging, and production — each with their own secrets. Compare and promote between environments.

Works with your stack

Plug into your existing deployment pipeline. No config changes needed.

Vercel

Netlify

GitHub Actions

Node.js SDK

Simple, honest pricing

Start free. Scale when you're ready. No surprises.

Free

$0forever

For solo developers and small side projects.

3 projects
3 team members
100 secrets per project
Dev + Staging environments
7-day audit log

Get started

Popular

Team

$8/user/mo

For growing teams shipping to production.

Unlimited projects
All environments
90-day audit log
CI/CD integrations
Git secret scanning

Start trial

Business

$18/user/mo

For teams that need advanced controls.

Secret rotation
Approval workflows
1-year audit log
Custom RBAC
Priority support